Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252851	7.5	危険	BraveNewCode	-	WordPress 用の WPTouch プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4803	2011-12-16 10:18	2011-12-14	Show	GitHub Exploit DB Packet Storm

252852	6.8	警告	DELL EMC (旧 EMC Corporation)	-	EMC RSA AAOP におけるアプリケーション制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2742	2011-12-15 16:59	2011-12-14	Show	GitHub Exploit DB Packet Storm

252853	6.8	警告	DELL EMC (旧 EMC Corporation)	-	EMC RSA AAOP におけるセキュリティ制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2741	2011-12-15 16:58	2011-12-14	Show	GitHub Exploit DB Packet Storm

252854	4.3	警告	アドビシステムズ	-	Adobe ColdFusion の RDS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4368	2011-12-15 16:57	2011-12-13	Show	GitHub Exploit DB Packet Storm

252855	4.3	警告	アドビシステムズ	-	Adobe ColdFusion におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2463	2011-12-15 16:57	2011-12-13	Show	GitHub Exploit DB Packet Storm

252856	4.3	警告	アップル	-	iOS 上の Safari におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	-	2011-12-15 12:02	2011-12-15	Show	GitHub Exploit DB Packet Storm

252857	7.2	危険	TADASoft	-	Tadasoft Restorepoint の評価版における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4202	2011-12-14 15:50	2011-12-13	Show	GitHub Exploit DB Packet Storm

252858	9.3	危険	TADASoft	-	Tadasoft Restorepoint の評価版における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4201	2011-12-14 15:50	2011-12-13	Show	GitHub Exploit DB Packet Storm

252859	7.5	危険	Brandon Long	-	Clearsilver の p_cgi_error 関数におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-134 書式文字列の問題	CVE-2011-4357	2011-12-13 15:11	2011-11-28	Show	GitHub Exploit DB Packet Storm

252860	4.6	警告	freedesktop.org	-	colord の cd-mapping-db.c および cd-device-db.c における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4349	2011-12-13 15:10	2011-12-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264561	9.8	CRITICAL Network	ibm	system_storage_ts3100-ts3200_tape_library	IBM System Storage TS3100-TS3200 Tape Library could allow an unauthenticated user with access to the company network, to change a user's password and gain remote access to the system.	CWE-284 Improper Access Control	CVE-2016-9005	2024-11-21 12:00	2017-02-9	Show	GitHub Exploit DB Packet Storm

264562	9.8	CRITICAL Network	ibm	dashdb_local	IBM dashDB Local uses hard-coded credentials that could allow a remote attacker to gain access to the Docker container or database.	CWE-798 Use of Hard-coded Credentials	CVE-2016-8954	2024-11-21 12:00	2017-02-9	Show	GitHub Exploit DB Packet Storm

264563	7.5	HIGH Network	fedoraproject artifex	fedora mujs	Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows attackers to cause a denial of service (applicatio…	CWE-190 Integer Overflow or Wraparound	CVE-2016-9108	2024-11-21 12:00	2017-02-4	Show	GitHub Exploit DB Packet Storm

264564	3.3	LOW Local	webmproject fedoraproject	libwebp fedora	Multiple integer overflows in libwebp allows attackers to have unspecified impact via unknown vectors.	CWE-190 Integer Overflow or Wraparound	CVE-2016-9085	2024-11-21 12:00	2017-02-4	Show	GitHub Exploit DB Packet Storm

264565	5.5	MEDIUM Local	cairographics	cairo	Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file.	CWE-190 Integer Overflow or Wraparound	CVE-2016-9082	2024-11-21 12:00	2017-02-4	Show	GitHub Exploit DB Packet Storm

264566	7.5	HIGH Network	ibm	urbancode_deploy	IBM UrbanCode Deploy could allow a malicious user to access the Agent Relay ActiveMQ Broker JMX interface and run plugins on the agent.	CWE-284 Improper Access Control	CVE-2016-9008	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

264567	6.1	MEDIUM Network	ibm	infosphere_information_server_on_cloud infosphere_datastage	IBM InfoSphere DataStage is vulnerable to cross-frame scripting, caused by insufficient HTML iframe protection. A remote attacker could exploit this vulnerability using a specially-crafted URL to nav…	CWE-79 Cross-site Scripting	CVE-2016-9000	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

264568	5.4	MEDIUM Network	ibm	infosphere_information_server infosphere_information_server_on_cloud infosphere_datastage	IBM InfoSphere Information Server contains a Path-relative stylesheet import vulnerability that allows attackers to render a page in quirks mode thereby facilitating an attacker to inject malicious C…	CWE-79 Cross-site Scripting	CVE-2016-8999	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

264569	5.3	MEDIUM Network	ibm	infosphere_datastage	IBM InfoSphere Information Server stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer hea…	CWE-200 Information Exposure	CVE-2016-8982	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

264570	5.3	MEDIUM Network	ibm	license_metric_tool bigfix_inventory	IBM BigFix Inventory v9 could disclose sensitive information to an unauthorized user using HTTP GET requests. This information could be used to mount further attacks against the system.	CWE-200 Information Exposure	CVE-2016-8977	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm